Brief Thoughts on SANS WhatWorks Summit in Forensics and Incident Response 2010
July 15th, 2010 admin
Last week I spoke at the third SANS WhatWorks Summit in Forensics and Incident Response in DC, organized and led by Rob Lee. As usual, Rob did a wonderful job bringing together interesting speakers and timely topics. I thought my presentation on “CIRT-level Response to Advanced Persistent Threat” went well and I enjoyed participating on the “APT Panel Discussion.” I wanted to share a few thoughts from the event. This is just the sort of event I like to attend. It’s almost more about the participants than the presentation content. I found plenty of peers interested in sharing leading practices. I hope to continue …
Related Videos from Youtube
Mords-moi sans hésitation French...
The Chin Review #4...Julian and Tarquin return, only to have a massive fall-out. www.facebook.com
Thayna : Mal sans toi...THAYNA : MAL SANS TOI Produced by VR6prod / Written by Thayna & Shana / Mixed & recorded by Kaysha / Video directed by Kaysha & Thierry Cordier for Sushiraw films & Discover-it / Casting by Joe Walha / ©09 Sushiraw - Section zouk
Hitler freaks out over Comic Sans M...www.designer-daily.com Hitler disaproves the use of Comic Sans MS for his propaganda campaign
phone security and cybersecurity ar...taosecurity.blogspot.com another of my two in one videos but this time i want to say to my subbers, that i will protect you guys from hackers, whenever i can in any form, cell phone security or pc i'm here for you guys and the youtube cominuty at large....
is prillo a nice security person or...geeks.pirillo.com i wouldn't mind if i got more subscribers who can watch my videos and i could help them in a friendly way and a good way, i'm not like prillo in any way i don't get mad at hateful comments etc taosecurity.blogspot.com
Zombie aware month.......avi...blog.fortinet.com come on join me and help in the fight against pc zombies..... i will deffend the youtube comminuty against hackers...... taosecurity.blogspot.com
AFCERT circa 2000...This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!
Related Posts
I wanted to remind everyone about the SANS WhatWorks Summit in Forensics and Incident Response in DC, 8-9 July 2010. The Agenda looks great. I will offer the “Expert Briefing: CIRT-level Response to Advanced Persistent Threat” and participate on the “APT Panel Discussion.” This IR event is a great precursor to my next SANS...
I am pleased to announce that I will return for the third SANS WhatWorks Summit in Forensics and Incident Response in DC, 8-9 July 2010. Rob Lee sent an email stating I would be on the Advanced Persistent Threat Panel with Chris Glyer and Mike Cloppert, so I’m looking forward to participating. I might also have a solo presentation, but I...
Thanks to everyone who attended the Bejtlich and Bradley Webcast for SANS yesterday. We recorded that Webcast (audio is now available ) to start a discussion concerning professional incident detection. I’m pleased to publish the following tentative speaker list for the SANS WhatWorks in Incident Detection Summit 2009 on 9-10 Dec in Washington,...
Taking another look at my notes, I found a bunch of quotes from speakers that I thought you might like to hear. “If you think you’re not using a MSSP, you already are. It’s called anti-virus.” Can anyone claim that, from the CIRTs and MSSPs panel? Seth Hall said “Bro is a programming language with a -i switch to sniff...
Title: World Summit on Counter Terrorism Location: Herzliyav, Israel Link out: Click here Description: Sponsored by the International Institute for Counter-Terrorism, this event will bring together counter-terrorism experts, security professionals, and leading academic scholars from diverse disciplines to network, establish essential mechanisms for...
A blog reader emailed the following question. We recently had a CISO change, and in the process of doing an initial ops review and looking at organizational structure, one of the questions the new CISO has is about the viability of offshoring incident response… I would be very interested in your views on this matter, and would appreciate...
I read the new OMB memorandum M-10-15 , “FY 2010 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management.” This InformationWeek article pretty well summarizes the memo, but I’d like to share a few thoughts. Long-time blog readers should know I’ve been writing about FISMA...
We had a great SANS WhatWorks in Incident Detection Summit 2009 this week! About 100 people attended. I’d like to thank those who joined the event as attendees; those who participated as keynotes (great work Ron Gula and Tony Sager), guest moderators (Rocky DeStefano, Mike Cloppert, and Stephen Windsor), speakers, and panelists; Debbie Grewe...
I’m a little late to this issue, but let me start by saying I read Craig Balding’s RSA Europe 2009 Presentation this evening. In it he mentioned something called the A6 Working Group. I learned this is related to several blog posts and a Twitter discussion. In brief: In May, Chris Hoff posted Incomplete Thought: The Crushing Costs...
It was with some small amusement that I read the following two press releases recently: First, from May, NetWitness® and ArcSight Partner to Provide Increased Network Visibility : NetWitness, the world leader in advanced threat detection and real-time network forensics, announced certification by ArcSight (NASD: ARST) of compliance with its Common...
Related Tweets from Twitter
There was an error processing the Feed, if this is your page, please check the information provided in your profile.
Related News from Digg
Leave a comment
| Trackback
